On 2015-11-18, 13:07 GMT, Tomasz Sterna wrote: > W dniu 18.11.2015, śro o godzinie 11∶30 +0100, użytkownik Matěj Cepl > napisał: >> So, I would like to switch off RC4 which is really an obsolete >> nosense. With Apache I can do it in its configuration, is it >> possible to do it somehow for jabberd2? > > in c2s.xml in <local> section set: > > <id pemfile='/etc/jabberd/ceplovi.cz.pem' > ciphers='ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES12 > 8:DH+AES:RSA+AESGCM:RSA+AES:!aNULL:!MD5:!DSS' > >ceplovi.cz</id> > > to get A score.
Which version of jabberd2 is required? With jabberd-2.3.2-3.el7.x86_64 (what we have in RHEL-7) it seems like one of the most succesful ways how to kill my server ;). Best, Matěj -- https://matej.ceplovi.cz/blog/, Jabber: [email protected] GPG Finger: 89EF 4BC6 288A BF43 1BAB 25C3 E09F EF25 D964 84AC Besides, the determined Real Programmer can write Fortran programs in any language. -- Ed Post, Real Programmers Don't Use Pascal
